Re: [Dnsmasq-discuss] No DNS server assigned to dhcp clients if port != 53 in dnsmasq.conf

2018-06-30 Thread richardvo...@gmail.com
Because the DHCP "name-server" attribute (option 6) carries only an IP address and not a port, this isn't going to work. The DHCP clients simply aren't written to configure DNS on any port other than 53. Now, if your intent is for DHCP clients to use a different DNS server on the same host, one

Re: [Dnsmasq-discuss] [RFC] dns: add option to ban domains

2017-08-09 Thread richardvo...@gmail.com
> > > How is the 'ban-hosts' file updated? Does it need a SIGHUP to dnsmasq > (please not another thing hanging off SIGHUP) Does it need a complete > restart? > > If 'ban-hosts' can be dynamically updated then I can see some value in it, > until then it looks like it's a syntax nicety. Perhaps

Re: [Dnsmasq-discuss] Dnsmaq giving default gateway address as dns server on DHCP offer

2017-08-06 Thread richardvo...@gmail.com
smasq(killing PID and starting commandline) it > works. Do you have any clue? > > Any help is much appreciated. > > Thanks, > Anoop > > On 8/6/17, richardvo...@gmail.com <richardvo...@gmail.com> wrote: > > One clear difference is that the query t

Re: [Dnsmasq-discuss] Dnsmaq giving default gateway address as dns server on DHCP offer

2017-08-06 Thread richardvo...@gmail.com
The default configuration of dnsmasq is to act as a caching proxy server (this behavior of dnsmasq has existed before dhcp support). There are a few reasons the proxying could fail, chief among them being firewall rules. If that isn't the problem, increasing the logging detail may give further

Re: [Dnsmasq-discuss] Dnsmaq giving default gateway address as dns server on DHCP offer

2017-08-05 Thread richardvo...@gmail.com
dnsmasq is capable of being the first DNS for clients and determining which requests should go to the AD controller and which to external DNS. Or, the configuration you describe is also possible. Where Ravi appears to have gone wrong is in thinking that /etc/resolv.conf addresses would be sent

Re: [Dnsmasq-discuss] can't get multiple domains to work

2017-02-20 Thread richardvo...@gmail.com
Have you tried using more than one domain= line? On Mon, Feb 20, 2017 at 6:57 PM, Spike wrote: > Dear all, > > first time poster here so first things first, thanks to all of you that > have worked on dnsmasq, all of us here have greatly benefited for years > from this great

Re: [Dnsmasq-discuss] [OT] A question about MX records

2017-02-19 Thread richardvo...@gmail.com
If by "alias", you mean a second A record for 84.92.49.234, then the common practice is to use a hostname of mail.domain.tld If by "alias", you mean a CNAME, you should know that listing a CNAME in an MX record violates the RFC. It often works, but some servers check for this and reject all mail

Re: [Dnsmasq-discuss] MAC address resolution of virtual machines

2016-08-29 Thread richardvo...@gmail.com
Not relevant to the issue you still face, but I just wanted to point out that triggering commands (such as iptables rule creation) based on leases being issued can be done using either the dhcp-script or DBus messaging, without having to hack the dnsmasq code itself. Actually, looking at the man

Re: [Dnsmasq-discuss] DHCP packet received on which has no address

2016-08-28 Thread richardvo...@gmail.com
On Thu, Aug 25, 2016 at 11:57 AM, Albert ARIBAUD wrote: > Le Thu, 25 Aug 2016 18:45:09 +0200 > Albert ARIBAUD a écrit: > > > > eth0.3 which does not have an IP and netmask, and therefore rightly > > complain about that. > > (developing slightly) >

Re: [Dnsmasq-discuss] Many immortals slow down dnsmasq. Bug or expected ?

2015-10-05 Thread richardvo...@gmail.com
There are some awesome data structures for simultaneously matching against huge numbers of patterns (as opposed to literal fixed strings). dnsmasq would get a lot more complicated if it tried to implement them, and complication in an internet-facing daemon is a "BAD thing" because it increases

Re: [Dnsmasq-discuss] Selective logging for log-queries

2015-06-22 Thread richardvo...@gmail.com
:23:27 -0500, richardvo...@gmail.com richardvo...@gmail.com a écrit : Configure dnsmasq to log via syslog, and filter there. The relevant configuration option is: *-8, --log-facility=facility* Set the facility to which dnsmasq will send syslog entries, this defaults to DAEMON

Re: [Dnsmasq-discuss] Selective logging for log-queries

2015-06-21 Thread richardvo...@gmail.com
Configure dnsmasq to log via syslog, and filter there. The relevant configuration option is: *-8, --log-facility=facility* Set the facility to which dnsmasq will send syslog entries, this defaults to DAEMON, and to LOCAL0 when debug mode is in operation. If the facility given contains at least

Re: [Dnsmasq-discuss] Kind request regarding Dnsmasq's Dns response auto caching feature not working

2015-05-30 Thread richardvo...@gmail.com
Because of your configuration, none of those packets are going to dnsmasq at all. The problem is this line. listen-address=127.0.0.1 On Sat, May 30, 2015 at 5:21 PM, Joyabrata Ghosh joy.car...@gmail.com wrote: Dear Dnsmasq Experts, Myself new to Dnsmasq and facing issues in personally

Re: [Dnsmasq-discuss] DBus API

2015-05-22 Thread richardvo...@gmail.com
I can see why rereading *all* configuration would require root privileges, but certainly a simple refresh of the DNS information doesn't since that would just update internal structures and not require opening any additional ports, since they would already be open. Dan dnsmasq already

Re: [Dnsmasq-discuss] DBus API

2015-05-21 Thread richardvo...@gmail.com
For the short term, NM does have an /etc/NetworkManager/dnsmasq.d directory where you can toss dnsmasq config files, which NM will pass to dnsmasq when it spawns it. Unfortunately, because D-Bus gets used on Ubuntu and dnsmasq isn't respawned on changes, that won't work for you. Ideally,

Re: [Dnsmasq-discuss] Any way to set the lease-time for hosts derived from /etc/ethers?

2015-05-08 Thread richardvo...@gmail.com
On Fri, May 8, 2015 at 2:35 PM, Simon Kelley si...@thekelleys.org.uk wrote: On 04/05/15 12:42, Rick Thomas wrote: Is there any way to set the lease time for a client derived from the /etc/ethers file? I can set a lease time for a lease derived from a “dhcp-range” or “dhcp-host”

Re: [Dnsmasq-discuss] Thanks and question

2015-02-10 Thread richardvo...@gmail.com
You're imagining the reserved range. The --dhcp-host configuration option of dnsmasq will reserve an address. --dhcp-range=static will not. Simon just explained that adding a pool automatically starts serving static addresses in the remainder of the subnet, so your dynamic from .1 to .99 and

Re: [Dnsmasq-discuss] Shellshock.

2014-09-30 Thread richardvo...@gmail.com
The problem is that there seems to be no standard for what characters have special meaning in environment variables (other than the usual none do which bash is violating here). Without that, or at least a guarantee that certain character AREN'T special, it's not possible to sanitize. On Tue, Sep

Re: [Dnsmasq-discuss] Shellshock.

2014-09-26 Thread richardvo...@gmail.com
I know this could be found in the code, and my own systems have busybox not bash, but I thought I'd ask for general interest: Is this a matter only of the shebang line in the script, or does dnsmasq use `system()` to run it, meaning that control passes through the user's login shell before

Re: [Dnsmasq-discuss] DNSMasq and DNS reflection attacks

2013-10-24 Thread richardvo...@gmail.com
Your case should be easy to stop with a firewall rule. Just block all packets matching the dns listen port (53 usually) in the INPUT chain, where the source address is outside your block. Optionally (this prevents reflection attacks against your own network which you said is not required),

Re: [Dnsmasq-discuss] DNSMasq and DNS reflection attacks

2013-10-24 Thread richardvo...@gmail.com
Sorry, I should mention only drop packets in state NEW, you don't want to drop replies to your own queries. On Thu, Oct 24, 2013 at 3:39 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Your case should be easy to stop with a firewall rule. Just block all packets matching the dns

Re: [Dnsmasq-discuss] DNSMasq and DNS reflection attacks

2013-10-24 Thread richardvo...@gmail.com
...@gameservers.com wrote: On 10/24/2013 4:40 PM, richardvo...@gmail.com wrote: Sorry, I should mention only drop packets in state NEW, you don't want to drop replies to your own queries. On Thu, Oct 24, 2013 at 3:39 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Your case

Re: [Dnsmasq-discuss] requested explanation of undocumented feature

2013-10-14 Thread richardvo...@gmail.com
for it, no joy in man pages, no example, not much by Google either. And so, this is a formal request to add to the documentation, please. Thanks, Jim A. On Mon, Oct 14, 2013 at 6:19 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Do you know what a network interface is? set: and match

Re: [Dnsmasq-discuss] requested explanation of undocumented feature

2013-10-14 Thread richardvo...@gmail.com
of the interface on which the request arrived is also set. On Mon, Oct 14, 2013 at 5:41 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: You forgot to cc the list. Network interfaces are not tags that can be manipulated with tag:/set:/net: Network interface names are matched

Re: [Dnsmasq-discuss] requested explanation of undocumented feature

2013-10-14 Thread richardvo...@gmail.com
BTW this message was wrong. Use tag:interfacenamehere to match against the name of a network interface. So tag:eth0 or tag:wlan0 I don't know where the dhcp-range=interface:ethN,192.168.1.100, 192.168.1.200 came from. On Mon, Oct 14, 2013 at 5:19 PM, richardvo...@gmail.com richardvo

Re: [Dnsmasq-discuss] Enable HAVE_IPSET by default

2013-04-11 Thread richardvo...@gmail.com
All of this suggests that to minimize the number of combinations but not bloat the binary, there ought to be a `MINIMAL` or `TEENY_TINY` macro that unsets HAVE_IPSET and a bunch of other similar non-critical features. On Thu, Mar 21, 2013 at 6:23 AM, Kevin Darbyshire-Bryant

Re: [Dnsmasq-discuss] How to set only one subdomain pointed to one address.

2013-02-04 Thread richardvo...@gmail.com
Have you tried making an entry in /etc/hosts (or whatever your dnsmasq hostsfile setting is) ? On Sun, Feb 3, 2013 at 5:22 PM, Jorge Sivil jorgex...@gmail.com wrote: Hi, I've used the 'address' configuration to resolve redmine.server.intranet but when I ping to *.redmine.server.intranet it

Re: [Dnsmasq-discuss] (no subject)

2013-01-17 Thread richardvo...@gmail.com
From your symptoms, I believe you aren't sending SIGHUP correctly, and dnsmasq picks up the change after a minute due to its /etc/hosts polling. dnsmasq uses multiple processes when seteuid behavior is enabled, so you might be signalling the wrong one. On Thu, Jan 17, 2013 at 11:51 AM, Eric

Re: [Dnsmasq-discuss] (no subject)

2013-01-17 Thread richardvo...@gmail.com
17, 2013 at 11:19 AM, richardvo...@gmail.com richardvo...@gmail.com wrote: From your symptoms, I believe you aren't sending SIGHUP correctly, and dnsmasq picks up the change after a minute due to its /etc/hosts polling. dnsmasq uses multiple processes when seteuid behavior is enabled, so you

Re: [Dnsmasq-discuss] DMZ IP allocations

2012-12-20 Thread richardvo...@gmail.com
Try removing the static dhcp-range entirely. Reserved addresses don't have to be in a pool, just on a network where DHCP is enabled. Which the other line already does. In cases where you do need the static dhcp-range (there is no pool on that interface), it's customary to specify just a single

Re: [Dnsmasq-discuss] DNS server order is not being honored

2012-12-11 Thread richardvo...@gmail.com
Unless you're using the strict-order option and still seeing the order change, this is not a bug. *-o, --strict-order*By default, dnsmasq will send queries to any of the upstream servers it knows about and tries to favour servers that are known to be up. Setting this flag forces dnsmasq to try

Re: [Dnsmasq-discuss] DNS server order is not being honored

2012-12-11 Thread richardvo...@gmail.com
But note that a better solution is to set specific nameservers for the local domain only. Read the dnsmasq man page, you'll learn how to do this and lots more. On Tue, Dec 11, 2012 at 1:17 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Unless you're using the strict-order option

Re: [Dnsmasq-discuss] DNS - preventing escalation to external

2012-12-05 Thread richardvo...@gmail.com
myhostess or myhostess.Z.com) can resolve to a generic name like Z.com. I thought DNS strictly avoids that; not true? ** ** Thanks, Dennis ** ** *From:* richardvo...@gmail.com [mailto:richardvo...@gmail.com] *Sent:* Tuesday, December 04, 2012 5:11 PM *To:* Lovelady

Re: [Dnsmasq-discuss] dnsmasq configuration

2012-12-04 Thread richardvo...@gmail.com
On Thu, Nov 29, 2012 at 8:31 AM, Ritesh Nanda riteshnand...@gmail.comwrote: hello, I am working on openstack , which uses dnsmasq as a dhcp server. Here is a challenge what i am facing , using dnsmasq configuration file i am adding a default route to the vms that are created in this

Re: [Dnsmasq-discuss] dnsmasq configuration

2012-12-04 Thread richardvo...@gmail.com
. ** *From:* dnsmasq-discuss-boun...@lists.thekelleys.org.uk [mailto: dnsmasq-discuss-boun...@lists.thekelleys.org.uk] *On Behalf Of * richardvo...@gmail.com *Sent:* Tuesday, December 04, 2012 3:20 PM *To:* Ritesh Nanda *Cc:* dnsmasq discussion list *Subject:* Re: [Dnsmasq-discuss

Re: [Dnsmasq-discuss] DNS - preventing escalation to external

2012-12-04 Thread richardvo...@gmail.com
Sounds like a search suffix is getting involved: After failing to find myhostess. your resolver looks for myhostess.X.com. which finds the alias. /etc/resolv.conf should contain the directives which control search suffix. On Tue, Dec 4, 2012 at 4:44 PM, Lovelady, Dennis E.

Re: [Dnsmasq-discuss] adding interface to leases file

2012-11-13 Thread richardvo...@gmail.com
I was under the impression that: (1) This information is already available to the lease script (2) The leasefile database format is locked down for backwards compatibility. But maybe Simon can find a way to make it work. On Tue, Nov 13, 2012 at 4:17 PM, David Bird da...@coova.com wrote:

Re: [Dnsmasq-discuss] dnsmasq for road warriors

2012-11-12 Thread richardvo...@gmail.com
at 05:46:10PM -0600, richardvo...@gmail.com wrote: no-resolv is doing more harm than good. dnsmasq is smart enough to ignore 127.0.0.1 in /etc/resolv.conf And it will automatically pick up DHCP-assigned DNS servers which written there. But you don't understand. The point of dnsmasq

Re: [Dnsmasq-discuss] DNS mapping for a specific IP

2012-11-10 Thread richardvo...@gmail.com
You could use iptables to redirect DNS queries from that photo frame to an alternate dnsmasq instance, via port masquerade. On Sat, Nov 10, 2012 at 9:58 AM, Karina Goyal karinago...@yahoo.com wrote: I need to do following DNS mapping in my router for all requests coming from a specific

Re: [Dnsmasq-discuss] SUCCESS

2012-10-17 Thread richardvo...@gmail.com
Now, I assume that all dhcmasq instantiations will each get copies of all dhcp6 packets. Unicast UDP doesn't guarantee that, usually a unicast packet is only delivered to one socket. ___ Dnsmasq-discuss mailing list

Re: [Dnsmasq-discuss] dnsmasq caching lease file?

2012-10-15 Thread richardvo...@gmail.com
You're confusing configuration with DHCP leases. If you map an IP address to MAC address in the nova-br100.conf file, then the VM will take out a DHCP for a fixed time. Until that lease expires, the IP address will not be given to another VM, even if you change the nova-br100.conf file. Look

Re: [Dnsmasq-discuss] Windows Server 2008 R2 issue

2012-10-15 Thread richardvo...@gmail.com
The problem isn't the destination address, but the source, since we're trying to catch anyone spoofing the DHCP server, but I may be able to write an iptables rule to catch this case and change the source IP to be correct. Understood, in my experience firewalls which don't unconditionally

Re: [Dnsmasq-discuss] Repeated assignment, ignored dhcp-host, and failed DNS lookup

2012-10-08 Thread richardvo...@gmail.com
How would I know if a rogue DHCP server has appeared on the net? I'm assuming you're on the right track since the answer to the remaining question is: You can do a packet capture on the computer getting the wrong addresses (use wireshark for example) while running ipconfig /renew Look at

Re: [Dnsmasq-discuss] Pulling DHCP leases from an external script?

2012-10-05 Thread richardvo...@gmail.com
Non-authoritative summary: Data goes from the dnsmasq server, to an dnsmasq helper process with limited privileges, to the script. No data comes back from the script, except during the startup phase. This is a security feature. On Wed, Oct 3, 2012 at 2:14 PM, Brian Rak b...@gameservers.com

Re: [Dnsmasq-discuss] Mitel specific dhcp-options

2012-10-01 Thread richardvo...@gmail.com
On Mon, Oct 1, 2012 at 10:39 AM, Chris MacLean ch...@netwonk.com wrote: Hi, Having some big problems with this and can't seem to make any headway. I'm specifying: dhcp-option=132,40 which I 'converted' from my old dhcpd configuration: option mitel-vlan-id code 132 = unsigned integer

Re: [Dnsmasq-discuss] Problem with OpenWRT + dnsmasq

2012-09-20 Thread richardvo...@gmail.com
. Wonder if I should stop using dnsmasq and go for dhcpcd, instead? Cheers Juhani -- Juhani Talvela Research Director, Faculty of Technology and Transport Kymenlaakso University of Applied Sciences www.kyamk.fi Tel: +358-447-028-227, Fax: +358-523-024-30 richardvo...@gmail.com richardvo

Re: [Dnsmasq-discuss] Problem with OpenWRT + dnsmasq

2012-09-16 Thread richardvo...@gmail.com
On Sun, Sep 16, 2012 at 1:01 PM, Juhani Talvela juhani.talv...@kyamk.fi wrote: Hi, I have a Netgear 3800 router running OpenWRT (earlier 10.03.1 and now 12.09-beta version). I upgraded because there was and is a seriour problem. When dnsmasq is running I have a constant load on my router

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-12 Thread richardvo...@gmail.com
Autotools question: is it possible to provide the equivalent of the BUILDDIR variable which provides an alternative location for .o files and binaries, so they're not mixed with the source files. that makes building different architectures in the same NFS-mounted source tree easy, and is

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-09 Thread richardvo...@gmail.com
Completely aside from arguments over the merits of autotools, this patch is not production-ready. It makes unrelated changes. Removal of the copyright notice is certainly not necessary for use of autotools. It breaks the documentation, which will no longer accurately describe the steps needed

Re: [Dnsmasq-discuss] dhcp logging and dhcp-range static configuration

2012-09-04 Thread richardvo...@gmail.com
On Tue, Sep 4, 2012 at 4:45 AM, Helmut Hullen hul...@t-online.de wrote: Hallo, Simon, Du meintest am 03.09.12: Is there a way to prevent logging the DHCPDISCOVER request for unconfigured hardware address in dhcp-range static mode ? Try dhcp-ignore=!known or possibly the old syntax

Re: [Dnsmasq-discuss] server-side dynamic resolving

2012-08-14 Thread richardvo...@gmail.com
standpoint. Anyway, this is particularly where I hit the issue and realized that dnsmasq is *just* attempting lookups via hosts files and dhpc leases and not additionally (or only) attempting nsswitch which would obviously generally include the system's dns servers among other things. If

Re: [Dnsmasq-discuss] increasing boot timeout

2012-08-07 Thread richardvo...@gmail.com
. 2. The TFTP server has not started yet, so client should retry 3. // Naderan *Mahmood; - Original Message - From: richardvo...@gmail.com richardvo...@gmail.com To: Mahmood Naderan nt_mahm...@yahoo.com Cc: dnsmasq-discuss@lists.thekelleys.org.uk dnsmasq-discuss

Re: [Dnsmasq-discuss] increasing boot timeout

2012-08-07 Thread richardvo...@gmail.com
*Mahmood; From: richardvo...@gmail.com richardvo...@gmail.com To: Mahmood Naderan nt_mahm...@yahoo.com Cc: dnsmasq-discuss@lists.thekelleys.org.uk dnsmasq-discuss@lists.thekelleys.org.uk Sent: Monday, August 6, 2012 6:58 AM Subject: Re: [Dnsmasq-discuss

Re: [Dnsmasq-discuss] increasing boot timeout

2012-08-06 Thread richardvo...@gmail.com
Both (1) and (2) are client configuration... if the client had gotten any configuration options from dnsmasq at that point, there'd be no need to retry. On Sun, Aug 5, 2012 at 1:24 PM, Mahmood Naderan nt_mahm...@yahoo.com wrote: Dear all, We have setup a diskless cluster in which there is a

Re: [Dnsmasq-discuss] increasing boot timeout

2012-08-06 Thread richardvo...@gmail.com
,ws05,192.168.1.5 So what is next? // Naderan *Mahmood; - Original Message - From: richardvo...@gmail.com richardvo...@gmail.com To: Mahmood Naderan nt_mahm...@yahoo.com Cc: dnsmasq-discuss@lists.thekelleys.org.uk dnsmasq-discuss@lists.thekelleys.org.uk Sent: Sunday, August 5, 2012 10:07 PM

Re: [Dnsmasq-discuss] Round Robin ping

2012-07-26 Thread richardvo...@gmail.com
Need more information about the `ping` implementation you are using. Does it re-lookup the name for each echo request? Usually it will look up the name once and use that single address for all outgoing ICMP packets. On Wed, Jul 25, 2012 at 3:21 PM, James Brown james.br...@ipsoft.com wrote:

Re: [Dnsmasq-discuss] is there anybody who can tell me how to read the source code?

2012-07-21 Thread richardvo...@gmail.com
Of course, tools like doxygen can help by automatically graphing the function call tree. On Fri, Jul 20, 2012 at 7:20 AM, SamLT s...@sltosis.org wrote: On Fri, Jul 20, 2012 at 09:26:03AM +0800, don wrote: i need to implement the dhcp function in one platform, but it's hard to read the source

Re: [Dnsmasq-discuss] static ip configuration

2012-07-18 Thread richardvo...@gmail.com
hostname - IP mapping is DNS, not related to DHCP. dnsmasq adds DHCP information into the DNS zone. DHCP has to map the information provided by the client (that is a MAC address, quite reliable, and a client ID, quite unreliable) to an IP address to be offered. I guess you're wanting the client

Re: [Dnsmasq-discuss] Removing a feature does anyone rely on this?

2012-07-09 Thread richardvo...@gmail.com
On Mon, Jul 2, 2012 at 11:16 AM, Helmut Hullen hul...@t-online.de wrote: Hallo, Simon, Du meintest am 02.07.12: dhcp-range may have an interface name supplied as interface:interface- name . I'd like to use this feature in many schools: eth0 and eth1 for the school clients in the LAN,

Re: [Dnsmasq-discuss] Removing a feature does anyone rely on this?

2012-07-09 Thread richardvo...@gmail.com
On Mon, Jul 9, 2012 at 10:18 AM, Helmut Hullen hul...@t-online.de wrote: Hallo, richardvo...@gmail.com, Du meintest am 09.07.12: We wanted dhcp-range=192.168.0.10,static,infinite # (192.168.0.0/24) for the school computers dhcp-range

Re: [Dnsmasq-discuss] dynamic file generation for dnsmasq-tftp?

2012-06-19 Thread richardvo...@gmail.com
Is any information about the remote end required for generating the dynamic part (e.g. the mac address of the node being booted)? On Tue, Jun 19, 2012 at 2:31 PM, Oliver Rath r...@mglug.de wrote: Hi list, Im brooding over the problem, that dnsmasq should send via tftp a file which would be

Re: [Dnsmasq-discuss] issue with dhcp-option tags for dnsmasq

2012-06-18 Thread richardvo...@gmail.com
On Mon, Jun 18, 2012 at 2:51 PM, Drew Horn horn.d...@gmail.com wrote: Based on the dnsmasq man page, it appears that tags aren't working for dhcp-options in dnsmasq-2.45.  Here's my understanding of how it should be used: 2.45 is VERY old. The new syntax was introduced in 2.53

Re: [Dnsmasq-discuss] Looking up local names doesn't work

2012-05-27 Thread richardvo...@gmail.com
On Sun, May 27, 2012 at 10:15 PM, ian ian_malc...@sjtu.edu.cn wrote: Hello I'm currently working a DNS server in a local area network. DHCP service is given by another server which is not under my control. Names on the internet are working fine, but looking up local names doesn't seem to

Re: [Dnsmasq-discuss] dnsmasq and sshfp records

2012-05-24 Thread richardvo...@gmail.com
dnsmasq doesn't use zone files. You can try with txt-record= (see the man page for details) On Thu, May 24, 2012 at 5:44 AM, Gerd Koenig koenig.boden...@googlemail.com wrote: Hi List, I'm currently looking for a solution to provide ssh-keys via DNS. Seems like sshfp records will solve this

Re: [Dnsmasq-discuss] standard gateway as Forwarding DNS-ip?

2012-05-18 Thread richardvo...@gmail.com
On Fri, May 18, 2012 at 7:09 AM, Oliver Rath r...@mglug.de wrote: Hi list, my dnsmasq doesnt forward DNS-queries correctly. The goal is, that dnsmasq takes the standard-gateway of dhcp as forwarding address for dns-requests. But this didnt work here. In such a case, you configure your DHCP

Re: [Dnsmasq-discuss] help needed in dnsmasq problem

2012-05-17 Thread richardvo...@gmail.com
I think your configuration is wrong, but as a test, does the strict-order option fix your problem? On Thu, May 17, 2012 at 9:38 AM, Atul Gupta atul14.ku...@gmail.com wrote: Hi, One server in my dnsmasq.conf file is never tried for sending the query.   Below is my config file:-   # Management

Re: [Dnsmasq-discuss] help needed in dnsmasq problem

2012-05-17 Thread richardvo...@gmail.com
is not correct in conf file. Thanks. On Thu, May 17, 2012 at 12:29 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: I think your configuration is wrong, but as a test, does the strict-order option fix your problem? On Thu, May 17, 2012 at 9:38 AM, Atul Gupta atul14.ku...@gmail.com

Re: [Dnsmasq-discuss] help needed in dnsmasq problem

2012-05-17 Thread richardvo...@gmail.com
calls the DNS Server address bad and never tries them again, because i  had a DNS server problem ...resolved it ...yet the dnsmasq never could do DNS resolution after the DNS server problem was resolved. On Thu, May 17, 2012 at 2:38 PM, richardvo...@gmail.com richardvo...@gmail.com wrote

Re: [Dnsmasq-discuss] multiple ips

2012-04-26 Thread richardvo...@gmail.com
Just use multiple dhcp-host lines. Also, the order is dhcp-host=[hwaddr][,id:client_id|*][,set:tag][,ipaddr][,hostname][,lease_time][,ignore] That is, the hostname comes after the IP address. And the netmask isn't specified explicitly, it's determined from the local interface configuration, or

Re: [Dnsmasq-discuss] multiple ips

2012-04-26 Thread richardvo...@gmail.com
:26:b9:03:bc:3b,10.0.1.1,jarod dhcp-host=00:22:5f:d1:7c:28,00:26:b9:03:bc:3b,172.16.1.1,jarod but dhcp server assign only first ip to my laptop. how can i solve? On Thu, Apr 26, 2012 at 4:04 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Just use multiple dhcp-host lines. Also

Re: [Dnsmasq-discuss] dnsmasq DHCP filter by circuit AND remote IDs

2012-04-26 Thread richardvo...@gmail.com
Use tag-if for boolean logic dhcp-circuitid=set:circuitmatch,circuit-id dhcp-remoteid=set:agentmatch,remote-id tag-if=set:bothmatch,tag:circuitmatch,tag:agentmatch On Thu, Apr 26, 2012 at 2:39 PM, David Dombrowsky david.dombrow...@redlion.net wrote: The man page for dnsmasq says “If an

Re: [Dnsmasq-discuss] multiple ips

2012-04-26 Thread richardvo...@gmail.com
: uhm...in need two ip addresses on same interface, only wlan0 for example. On Thu, Apr 26, 2012 at 9:46 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: What is your interface configuration (`ip show address`)?  What interface is your laptop connected to? This allows you to reserve

Re: [Dnsmasq-discuss] multiple ips

2012-04-26 Thread richardvo...@gmail.com
? On Thu, Apr 26, 2012 at 10:12 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Then you need to configure your client to make two requests (using two locally-administered MAC addresses, probably).  The DHCPOFFER message only carries one IP address.  That limitation isn't peculiar

Re: [Dnsmasq-discuss] multiple ips

2012-04-26 Thread richardvo...@gmail.com
:53 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: What OS are you using?  But this is very abnormal behavior you are asking for, I think you either need a specialty client or else virtual subinterfaces. On Thu, Apr 26, 2012 at 4:11 PM, Luca Postregna luca.postre...@gmail.com wrote

Re: [Dnsmasq-discuss] Slow response to DHCPDISCOVER

2012-04-24 Thread richardvo...@gmail.com
Daryl may still be correct. Linux's bridge module also implements the learning phase (for detection of loops) before it begins forwarding packets. On Tue, Apr 24, 2012 at 10:38 PM, Adrian May adrian@oregan.net wrote: Hi Daryl, There is no switch. I'm trying to build a router and I'm

Re: [Dnsmasq-discuss] DNS in DNsmasq

2012-04-23 Thread richardvo...@gmail.com
No. You must configure dnsmasq with an upstream nameserver which will perform the recursive query. dnsmasq is a server for your local zone (with DHCP integration, similar to dynamic dns) and a cache. It is not a recursive nameserver. On Mon, Apr 23, 2012 at 9:23 AM, dnsmasq dnsmasq

Re: [Dnsmasq-discuss] Update: Lowercase patch for 2.61rc2

2012-04-20 Thread richardvo...@gmail.com
On Fri, Apr 20, 2012 at 2:20 AM, Oliver Rath r...@mglug.de wrote: [snip] Now you can say: Ok, why you dont use a partition with the ignore_case-Option holding all this drivers? This is right unless you are working on embedded environment with low space. There it is much smarter using the

Re: [Dnsmasq-discuss] load balancing with interfaces

2012-04-11 Thread richardvo...@gmail.com
On Wed, Apr 11, 2012 at 4:31 AM, Helmut Hullen hul...@t-online.de wrote: Hallo, in a school I want to run all schoolish clients (about 150) over eth0, with quasi static IP addresses (dhcp-host=...) and all private clients (private netbooks, smartphones etc.) over eth1 (completely DHCP, lease

Re: [Dnsmasq-discuss] DNSMasq script lookup

2012-03-30 Thread richardvo...@gmail.com
On Fri, Mar 30, 2012 at 9:26 AM, Simon Kelley si...@thekelleys.org.ukwrote: On 29/03/12 20:12, richardvo...@gmail.com wrote: On thing which might be interesting, is to define a new type of upstream server (maybe called a look-aside server) which dnsmasq will send a query to first, and which

Re: [Dnsmasq-discuss] DNSMasq script lookup

2012-03-29 Thread richardvo...@gmail.com
On thing which might be interesting, is to define a new type of upstream server (maybe called a look-aside server) which dnsmasq will send a query to first, and which if it can't answer the query can return a custom return-code Not known, which causes dnsmasq to then push the query into the

Re: [Dnsmasq-discuss] server config options not working

2012-03-22 Thread richardvo...@gmail.com
DNS is the wrong place to implement this behavior. Interception of TCP connections is done with packet rewriting rules in iptables, and you'll need to set up your exceptions there also. On Thu, Mar 22, 2012 at 6:01 AM, Ian Rose irose...@gmail.com wrote: I have set up a Ubuntu 10.04 LTS desktop

Re: [Dnsmasq-discuss] Feature Request: tftp-script

2012-03-19 Thread richardvo...@gmail.com
Existing scripts could definitely break, imagine one that just logs certain environment variables plus the parameter. The new action values won't have the right environment variable set. How about both? Give the --tftp-script the same action parameter, and keep actions unique, that way both

Re: [Dnsmasq-discuss] Detect conflicting DHCP servers

2012-03-09 Thread richardvo...@gmail.com
Contacting DHCP servers is a task for a DHCP client, not a DHCP server. There are a number of scripts available which will send a request and listen to all responses (not just the first), generating an alert if any unexpected nodes responded. Google rogue DHCP detect. On Fri, Mar 9, 2012 at

Re: [Dnsmasq-discuss] dnsmasq itself as WINS server

2012-02-06 Thread richardvo...@gmail.com
Do you even need WINS if DNS lookup is working properly? I think it's become completely redundant. On Mon, Feb 6, 2012 at 11:09 AM, go4un...@hushmail.com wrote: esehello everybody I use dnsmasq as a feature of TomatoUSB 1.28 VPN. Now I have three samba servers behind the TomatoUSB-Router.

Re: [Dnsmasq-discuss] Redundant setup with Dnsmasq

2011-12-23 Thread richardvo...@gmail.com
2011/12/22 Markus Schöpflin markus.schoepflin+gm...@gmail.com: Am 22.12.2011 19:58, schrieb richardvo...@gmail.com: [...] See the dhcp-script and leasefile-ro options. Duh, I completely missed that option when reading the man page. This looks like it would enable two servers to be working

Re: [Dnsmasq-discuss] Redundant setup with Dnsmasq

2011-12-22 Thread richardvo...@gmail.com
On Thu, Dec 22, 2011 at 8:13 AM, Michael Rack michael.r...@rsm-freilassing.de wrote: Very easy. You need at least one virtual ip-address for your DNS- and DHCP-Server. So lets say you have a Class-C Network 10.0.0.0/24     * Primary DNS / DHCP    10.0.0.251     * Secondary DNS / DHCP  

Re: [Dnsmasq-discuss] Some clients get wrong IP

2011-12-20 Thread richardvo...@gmail.com
Check your log, see if the camera is reporting a wrong MAC, different client-id, different vendor class, or something like that. Or possibly the camera's bootloader is remembering its old address (gotten before you configured your hosts file) and requesting a renewal. Again, the log would show a

Re: [Dnsmasq-discuss] DNSMASQ Logging and

2011-11-13 Thread richardvo...@gmail.com
On Sat, Nov 12, 2011 at 3:49 PM, gcmart...@netscape.net wrote: I am a user of DNSMASQ that has it installed on a Puppy Linux distro.The Puppy distro starts normally, acquiring a DHCP address automatically from an upstream router. DNSMASQ is installed via the Puppy distro's package manager.

Re: [Dnsmasq-discuss] Lease Time Detail

2011-09-22 Thread richardvo...@gmail.com
Surely the DNSMASQ_LEASE_EXPIRES variable should be captured also. On Thu, Sep 22, 2011 at 8:08 AM, Helmut Hullen hul...@t-online.de wrote: Hallo, Pratik, Du meintest am 22.09.11: And can I pls ask u to show me a simple script to do so??? I m totally naive for scripting so.. Thanks in

Re: [Dnsmasq-discuss] Lease Time Detail

2011-09-21 Thread richardvo...@gmail.com
Read the man page description for dhcp-script. All the information you asked about is available there. So dnsmasq does have it. Anyway, the simple way is to write a dhcp-script that puts information in a database, that way you'll have records of expired leases, since dnsmasq removes them from

Re: [Dnsmasq-discuss] DHCP Relay, assign address from other vlan, with no dhcp listening on it

2011-09-15 Thread richardvo...@gmail.com
Or is your router not the same device where your dnsmasq is running on? Exactly. Have you considered running the dhcp relay agent on the router instead of the L2 switch? This approach often offers much more flexibility and capability.

Re: [Dnsmasq-discuss] DHCP Relay, assign address from other vlan, with no dhcp listening on it

2011-09-15 Thread richardvo...@gmail.com
On Thu, Sep 15, 2011 at 12:03 PM, SpiderX spid...@spiderx.dp.ua wrote: On Thu, Sep 15, 2011 at 7:44 PM, richardvo...@gmail.com richardvo...@gmail.com wrote: Or is your router not the same device where your dnsmasq is running on? Exactly. Have you considered running the dhcp relay agent

Re: [Dnsmasq-discuss] DHCP Relay, assign address from other vlan, with no dhcp listening on it

2011-09-14 Thread richardvo...@gmail.com
I don't agree. Dnsmasq is a great software, I use it for years in a small environment. In bigger networks usage of l2 switches is necessary, and as Michael, I dont know too any l2 switch that supports any dhcp-related RFC, except 3046. There are not some many unix dhcp software that can be

Re: [Dnsmasq-discuss] DHCP Relay, assign address from other vlan, with no dhcp listening on it

2011-09-13 Thread richardvo...@gmail.com
If it can be done, it should be done :) The reason why it should be done in my case not beacuse I'm lazy to use sub-option 5, but because I just cannot use it. My switch vendor doesnt support RFC5107, and that the reason why I can't use dnsmasq, and I'm not the only one. According to what

Re: [Dnsmasq-discuss] [PATCH] dnsmasq.8

2011-08-31 Thread richardvo...@gmail.com
requestor was fine (according to Merriam-Webster). Glad I won't have to see the misspelling of omit any more. On Tue, Aug 30, 2011 at 5:58 AM, Simon Kelley si...@thekelleys.org.uk wrote: Douglas Landgraf wrote:  Hello, I am the current fedora packager to dnsmasq. Reviewing all requests

Re: [Dnsmasq-discuss] Using a secondary set of nameservers for dynamic blocking

2011-08-15 Thread richardvo...@gmail.com
On Mon, Aug 15, 2011 at 7:02 AM, Sam Crawford samcrawf...@gmail.com wrote: Ed, Many thanks for the suggestion. You're quite right - my server-side idea was effectively re-inventing the wheel. I've ended up going with rbldnsd, which has been a breeze to setup for this task (even with millions

Re: [Dnsmasq-discuss] URL redirection

2011-07-03 Thread richardvo...@gmail.com
That question was about matching part of the URL path. This one seems just to be about hostnames, which DNS does affect (in most cases). On Sat, Jul 2, 2011 at 5:08 PM, Matthias Andree matthias.and...@gmx.de wrote: Am 02.07.2011 09:30, schrieb Tomas Sironi: Hi people. I'm sure someone has

Re: [Dnsmasq-discuss] URL redirection

2011-07-02 Thread richardvo...@gmail.com
And here I was thinking block access to facebook from the company network. But DNS wouldn't exactly be the best way to do so. On Sat, Jul 2, 2011 at 11:34 AM, Lee Maisel mai...@lobo.net wrote: Oh! Sorry, LOL  that makes sense.  So instead of just blocking AD sites for your network, have it

Re: [Dnsmasq-discuss] DHCP - One IP Range per interface

2011-06-27 Thread richardvo...@gmail.com
Yes. If you write multiple dhcp-range lines in your configuration, dnsmasq will pair them with interfaces according to the local interface address (i.e. if eth1 is 192.168.1.x then dnsmasq will serve addresses from the 192.168.1.0/24 pool in response to requests received at eth1). On Mon, Jun

Re: [Dnsmasq-discuss] Two quick questions about running dnsmasq under Mac OS X

2011-06-22 Thread richardvo...@gmail.com
On Tue, Jun 21, 2011 at 2:04 PM, Mel Brands bigh...@gmail.com wrote: Hi guys, I've successfully installed and configured dnsmasq on my Mac laptop and I have two quick questions. 1) How do you quickly tell dnsmasq to reload config files and reload /etc/hosts (or wherever you have your hosts

  1   2   3   4   >